Why we can't trust Microsoft's 'trustworthy' OS (Palladium, again)

Yahoo ^ | Tue Jul 2,11:58 AM ET | David Coursey

[Dominic Harr]

Why we can't trust Microsoft's 'trustworthy' OS
Tue Jul 2,11:58 AM ET

David Coursey

COMMENTARY--Stung by criticism of its current offerings, Microsoft seems to be pinning its hopes for a truly "trustworthy" operating system on a future version of Windows, code-named Palladium.

?

BizTech Library

?

2GHz Notebooks

?

Wireless ISP Info

?

Bluetooth Report

 Sign up for the free ZDNet
 News Dispatch:

(CNET Networks Privacy Policy)

Don't expect to see that OS anytime soon. Palladium is a long-term project that requires not only a new operating system, but new computers as well. How long Microsoft won't say. I'm thinking 2006 or later.

I DIDN'T EXPECT to write about Palladium until the end of the year. That's because, when Microsoft started pre-briefing analysts this spring, the company made us promise not to talk about the new OS until near year-end.

But then some smart reporters--including Michael Cherry of Directions on Microsoft (a frequent radio guest of mine) and Newsweek's  Steven Levy--discovered that Microsoft had filed for a patent on an operating system with built-in digital rights management features.

Microsoft tried to keep a lid on the story for as long as possible. But after finding out that Levy was going to print something, the company invited him to Redmond for two days to hear the whole story. Even then, Microsoft didn't expect the story to run so soon. When it discovered that Levy's story was about to hit the streets, Microsoft barely had time to warn those of us who were maintaining our silence that the secret was almost out of the bag.

I'm telling you all this because Microsoft would have been better off staying silent on this one. The reports that are surfacing are going to raise many more questions than Microsoft has answers for.

WHAT WE DO KNOW is this: Palladium will depend on a combination of hardware and software. While Microsoft will design the new OS, chipmakers such as AMD and Intel would design and implement new hardware--specifically, a chip on the motherboard supporting a technology called "public-key cryptography"--on which that OS would rely.

Public key cryptography allows users, software, and devices to authenticate themselves over a network. Palladium started as a way of using public key crypto to manage rights to entertainment content like music and movies. Then Microsoft engineers realized it could do the same thing for entire networks of computers, users, and applications.

According to Microsoft, Palladium is intended to protect a machine only if it's attacked via software or over a network. If someone had physical access to your machine, the crypto chip could be compromised and encrypted information on the machine would no longer be secure.

But beyond those sketchy details, a whole slew of questions remain:

• Will Palladium reinforce Microsoft's monopoly control over PC operating systems? Might the privacy and competition-conscious Europeans have something to say about this?
• How will governments deal with the wiretap issues, privacy issues, and employer-employee relationship issues that Palladium raises?
• What if Palladium is just as buggy as the rest of Microsoft's code? If it is, won't it only create the illusion of security? And isn't such an illusion worse than the bitter truth?
• The biggest question of all: Why should we trust Microsoft anyway? If PCs need a universal security architecture to protect critical business information, should Microsoft be its sole creator? Is there a public interest that makes this too big for any one company or even country to dominate? (No, Microsoft is not yet a country, although buying one and becoming an offshore corporation always looms as a possibility, I suppose.)

Palladium remains a slippery subject, in large part because Microsoft seems to be talking out of both sides of its mouth.

LEVY AND I, for example, have interviewed many of the same people. But in his article, he discussed features that I was explicitly told are not part of Palladium. But the reality is--and this is important--that Palladium provides a platform for building just about anything security-related that a developer might want to conjure up.

Palladium is like any other fundamental technology: You can build things with it that will be good for people, and you can build things with the potential to hurt people. And sometimes the same thing will be capable of both.

So while Palladium is explicitly designed to handle rights management--meaning it'll govern what software you are allowed to run and what you're allowed to do with documents and content--it could also be used for user authentication. If that happens (and it's an almost foregone conclusion), a Palladium computer would always know who is using it and what that user is doing--and could report the information to third-parties.

MICROSOFT PROMISES--and I believe that they're serious--that users will control their own personal information. But how this plays in the real world ( news - Y! TV), where users often have very little power, remains to be seen.

The good news is that we have time. While Levy says Palladium could start showing up as early as 2004, I'm betting most users won't start seeing it until 2006 or 2007--and then only if Microsoft is able to convince any number of organizations, governments, and even individuals that Palladium isn't more of privacy threat than a solution to privacy problems.

Microsoft has one key factor in its favor: the growing realization among its customers that we must do something, and that tomorrow's digital devices--and I'm talking much more than PCs here--need the trustworthiness that Microsoft claims Palladium will offer.

But is the world ready to trust Microsoft on something it has such a hard time explaining?

What do you think? Would you trust Microsoft to make a trustworthy operating system? Do you think the company can? TalkBack to me below!

[Dominic Harr]

I haven't really gotten very deep into these 'Palladium' discussions before now, but I'm starting to think this is the most important tech issue in the news.

[general_re]

Don't need it, don't want it, don't like it.

Guess I won't get it ;)

[Dominic Harr]

Ping.

[Dominic Harr]

The thing that worries me is they're planning on pushing laws to require this.

If you read the story, the writer says he's known about this for some time but was sworn to secrecy.

That worries me.

[Psycho_Bunny]

I expect Palladium to do little other than give a huge boost to Linux.

[kevlinsky]

If you read the story, the writer says he's known about this for some time but was sworn to secrecy.

That worries me.

It really shouldn't. Companies do that all the time so that information that could be false isn't spread - this generally is bad for stock prices. Here's what I mean:

Suppose Company A is going to release some new gadget. While they are still discussing what it will have and what it won't have, someone finds that they are planning on implementing Feature B. Word gets out that Feature B will be in this product, even though nothing is finalized. Eventually everyone gets so hyped about this Feature B, that when it turns out that Gadget C doesn't have it, Company A's stock drops because of disappointment. It has happened repeatedly.

[Britton J Wingfield]

Swearing a writer to secrecy is pretty standard in all industries when a new product is going to roll. Palladium itself is scary, though, and I want no part of it. I have a whole farm of microsoft servers that I keep track of here, and I like working with their current OSes, so I am not kneejerk anti-gates. Palladium, or any of the similar hardware-based content protection, would be a nightmare.

[kevlinsky]

I expect Palladium to do little other than give a huge boost to Linux.

I expect the same. Windows XP already turned many people away from windows, due to its integration with all of these Microsoft products. Unfortunately, Lynux has poor driver support from companies, and for many, it is very unwieldy. I think a lot of people will sacrifice privacy for ease of use in the end.

[toupsie]

Unfortunately, Lynux has poor driver support from companies, and for many, it is very unwieldy. I think a lot of people will sacrifice privacy for ease of use in the end.

Maybe they should switch and get ease of use, driver support and privacy protection.

[ibme]

This is Where you Will Go todayTM M$

[eno_]

Laws that mandate this SHOULD worry everyone.

E-books were a monsterous flop because nobody likes the idea of registering what they read (not even East Germany had a system for registering books!) and losing the right to resell a book. Used books are a huge success on Amazon and Ebay. Palladium is an attempt to make the same kind of DRM pervasive.

Of course nobody would voluntarily let publishers, much less record companies and movie studios, keep track of what they read, watch, or listen to. That is creepy big-brotherism. And Palladium has a hardware component that is Big Brother Inside. There isn't anything to like about it.

[Dominic Harr]

I hope you're right. But if they pass laws . . .

I'm afraid this is going to become a problem.

[Dominic Harr]

Companies do that all the time so that information that could be false isn't spread

I'm sorry, I should have been more clear.

What worries me is that the press is aware of a serious threat to our freedom, and they're treating it like it's just a business story.

Imagine if MS had gone to them and said, "We're working on software and laws to pasa a national gun registration cards. But don't tell anyone yet!"

I would *hope* the press could be counted on not to be lap-dogs, like they've chosen in this case.

Probably I'd be wrong, but I could hope!

[Dominic Harr]

Palladium itself is scary, though, and I want no part of it.

That's what worries me.

MS went to the press and said, "We're planning on building this thing to take away computing freedom and passing laws to require it, now don't tell anyone!"

And the Press, like lap-dogs, kept it quiet!

At least the Newsweek fellow apparently refused to play the MS game. There is that, I suppose.

[Dominic Harr]

Very good!

It's come to that, apparently.

[Dominic Harr]

Laws that mandate this SHOULD worry everyone.

My thinking too.

I'm wondering -- if a company had gone to reporters and said that they're putting together software to track all abortions in America, and were lobbying for laws to require all abortion clinics use the software:

Would the reporters just happily keep quiet then?

Somehow I doubt it.

[steve-b]

If Microsoft had some sneaky plan to force gun registration, most of the mainstream press would be lining up to given them Lewinskys.

[Bush2000]

Remember serial numbers in Pentium processors, Harr? Intel proposed it, MS endorsed it, and it never came to pass. Why? Because there was a public outcry against it. Don't underestimate the power of the public here. If they're unable to burn and/or distribute MP3s, distribute documents, and collaborate with friends and coworkers, this scheme simply won't fly. It doesn't matter how much MS or Intel or Dell or RIAA or MPAA or whoever wants it to happen. There are fundamental freedoms in computing that people simply won't give up. And if MS and Intel insist on establishing such an architecture, people will walk with their dollars to the Mac. Or they'll install Linux. Either way, the free market will speak.

[Dominic Harr]

If Microsoft had some sneaky plan to force gun registration, most of the mainstream press would be lining up to given them Lewinskys.

Yep.

Now when MS has a sneaky plan to force computer control, the press happily holds it's tongue.

Yeesh.

[Nowhere Man]

Looks like I'm keeping my Pentium II.